Systems and Methods Using Cryptography to Protect Secure Computing Environments

US 20080031461A1
Filed: 08/20/2007
Published: 02/07/2008
Est. Priority Date: 08/12/1996
Status: Abandoned Application

First Claim

Patent Images

1. A method comprising:

digitally signing at least a first part of a first load module using a first key to yield a first digital signature;

digitally signing at least a second part of the first load module to yield a second digital signature; and

distributing at least the first digital signature and the second digital signature to a first remote electronic appliance, wherein the first remote electronic appliance comprises a protected processing environment operable to authenticate at least one of the first digital signature and/or the second digital signature before the first remote electronic appliance executes the first load module, the protected processing environment being resistant to tampering by a user of the first remote electronic appliance.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Secure computation environments are protected from bogus or rogue load modules, executables and other data elements through use of digital signatures, seals and certificates issued by a verifying authority. A verifying authority—which may be a trusted independent third party—tests the load modules or other executables to verify that their corresponding specifications are accurate and complete, and then digitally signs the load module or other executable based on tamper resistance work factor classification. Secure computation environments with different tamper resistance work factors use different verification digital signature authentication techniques (e.g., different signature algorithms and/or signature verification keys)—allowing one tamper resistance work factor environment to protect itself against load modules from another, different tamper resistance work factor environment. Several dissimilar digital signature algorithms may be used to reduce vulnerability from algorithm compromise, and subsets of multiple digital signatures may be used to reduce the scope of any specific compromise.

36 Citations

View as Search Results

22 Claims

1. A method comprising:
- digitally signing at least a first part of a first load module using a first key to yield a first digital signature;
  
  digitally signing at least a second part of the first load module to yield a second digital signature; and
  
  distributing at least the first digital signature and the second digital signature to a first remote electronic appliance, wherein the first remote electronic appliance comprises a protected processing environment operable to authenticate at least one of the first digital signature and/or the second digital signature before the first remote electronic appliance executes the first load module, the protected processing environment being resistant to tampering by a user of the first remote electronic appliance.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising:
    - encrypting the first load module.
  - 3. The method of claim 1, further comprising:
    - digitally signing at least a first part of a second load module using the first key to yield a third digital signature.
  - 4. The method of claim 3, further comprising:
    - distributing at least the third digital signature to the first remote electronic appliance, wherein the protected processing environment is operable to authenticate at least the third digital signature before the first remote electronic appliance executes the second load module.
  - 5. The method of claim 1, further comprising:
    - distributing at least the first digital signature and the second digital signature to a second remote electronic appliance, wherein the second remote electronic appliance comprises a protected processing environment operable to authenticate at least one of the first digital signature and/or the second digital signature before the second remote electronic appliance executes the first load module, wherein the protected processing environment is resistant to tampering by a user of the second remote electronic appliance.
  - 6. The method of claim 5, in which the first remote electronic appliance and the second remote electronic appliance comprise a first public key for authenticating at least one of the first digital signature and/or the second digital signature.
  - 7. The method of claim 1, in which the first load module, when executed by the first remote electronic appliance, is configured to cause the first remote electronic appliance to perform at least one action selected from the group consisting of:
    - record an aspect of usage of a piece of electronic content, prevent a user from making a copy of a piece of electronic content, charge a user a fee for viewing a piece of electronic content, enable the first remote electronic appliance to perform a financial transaction, and enable the first remote electronic appliance to play a piece of electronic content.
  - 8. The method of claim 1, in which the first part of the first load module and the second part of the first load module comprise the same part of the first load module.
  - 9. The method of claim 1, in which a second key that is different from the first key is used to sign the second part of the first load module.
  - 10. The method of claim 1, further comprising:
    - securely distributing a first public key to the first remote electronic appliance, the first public key being configured for use in authenticating at least one of the first digital signature and/or the second digital signature.

11. A computer-readable medium comprising program code, the program code being operable, when executed by a computer system, to cause the computer system to perform steps comprising:
- digitally signing at least a first part of a first load module using a first key to yield a first digital signature;
  
  digitally signing at least a second part of the first load module to yield a second digital signature; and
  
  distributing at least the first digital signature and the second digital signature to a first remote electronic appliance, wherein the first remote electronic appliance comprises a protected processing environment operable to authenticate at least one of the first digital signature and/or the second digital signature before the first remote electronic appliance executes the first load module, the protected processing environment being resistant to tampering by a user of the first remote electronic appliance.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The computer-readable medium of claim 11, further including program code that is operable, when executed by the computer system, to cause the computer system to perform the step of:
    - encrypting the first load module.
  - 13. The computer-readable medium of claim 11, further including program code that is operable, when executed by the computer system, to cause the computer system to perform steps comprising:
    - digitally signing at least a first part of a second load module using the first key to yield a third digital signature; and
      
      distributing at least the third digital signature to the first remote electronic appliance, wherein the protected processing environment is operable to authenticate at least the third digital signature before the first remote electronic appliance executes the second load module.
  - 14. The computer-readable medium of claim 11, further including program code that is operable, when executed by the computer system, to cause the computer system to perform the step of:
    - securely distributing a first public key to the first remote electronic appliance, the first public key being configured for use in authenticating at least one of the first digital signature and/or the second digital signature.
  - 15. The computer-readable medium of claim 11, in which a second key that is different from the first key is used to sign the second part of the first load module.

16. A system comprising:
- means for digitally signing at least a first part of a first load module using a first key to yield a first digital signature;
  
  means for digitally signing at least a second part of the first load module to yield a second digital signature; and
  
  means for distributing at least the first digital signature and the second digital signature to a first remote electronic appliance, wherein the first remote electronic appliance comprises a protected processing environment operable to authenticate at least one of the first digital signature and/or the second digital signature before the first remote electronic appliance executes the first load module, the protected processing environment being resistant to tampering by a user of the first remote electronic appliance.
- View Dependent Claims (17, 18, 19, 20, 21, 22)
- - 17. The system of claim 16, further comprising:
    - means for encrypting the first load module.
  - 18. The system of claim 16, further comprising:
    - means for digitally signing at least a first part of a second load module using the first key to yield a third digital signature.
  - 19. The system of claim 18, further comprising:
    - means for distributing at least the third digital signature to the first remote electronic appliance, wherein the protected processing environment is operable to authenticate at least the third digital signature before the first remote electronic appliance executes the second load module.
  - 20. The system of claim 16, further comprising:
    - means for distributing at least the first digital signature and the second digital signature to a second remote electronic appliance, wherein the second remote electronic appliance comprises a protected processing environment operable to authenticate at least one of the first digital signature and/or the second digital signature before the second remote electronic appliance executes the first load module, wherein the protected processing environment of the second remote electronic appliance is resistant to tampering by a user of the second remote electronic appliance.
  - 21. The system of claim 16, in which the means for digitally signing at least a second part of the first load module uses a second key that is different from the first key.
  - 22. The system of claim 16, further comprising:
    - means for securely distributing a first public key to the first remote electronic appliance, the first public key being configured for use in authenticating at least one of the first digital signature and/or the second digital signature.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Van Wie, David, Sibert, W., Shear, Victor

Application Number

US11/841,446
Publication Number

US 20080031461A1
Time in Patent Office

Days
Field of Search
US Class Current

380/282
CPC Class Codes

G06F 12/1483   using an access-table, e.g....

G06F 21/10   Protecting distributed prog...

G06F 21/51   at application loading time...

G06F 2211/007   Encryption, En-/decode, En-...

G06Q 20/02   involving a neutral party, ...

G06Q 20/085   involving remote charge det...

G06Q 20/12   specially adapted for elect...

G06Q 20/24   Credit schemes, i.e. "pay a...

G06Q 20/3674   involving authentication

G06Q 20/3823   combining multiple encrypti...

G06Q 20/3825   Use of electronic signatures

G06Q 20/401   Transaction verification

G11B 20/00086   Circuits for prevention of ...

G11B 20/00159   Parental control systems

G11B 20/00173   wherein the origin of the c...

G11B 20/00188   involving measures which re...

G11B 20/00195   using a device identifier a...

G11B 20/0021   involving encryption or dec...

G11B 20/00543   wherein external data is en...

G11B 20/00557   wherein further management ...

G11B 20/00688 : said measures preventing th...

G11B 20/0071 : involving a purchase action

G11B 20/00768 : wherein copy control inform...

G11B 2220/216 : Rewritable discs

G11B 2220/218 : Write-once discs

G11B 2220/2562 : DVDs [digital versatile dis...

G11B 2220/2575 : DVD-RAMs

G11B 27/031 : Electronic editing of digit...

G11B 27/329 : on a disc [VTOC]

H04L 12/40104 : Security; Encryption; Conte...

H04L 12/40117 : Interconnection of audio or...

View All

Systems and Methods Using Cryptography to Protect Secure Computing Environments

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

36 Citations

22 Claims

Specification

Use Cases

Quick Links

Others

Systems and Methods Using Cryptography to Protect Secure Computing Environments

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

36 Citations

22 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others